FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- Intel CPU Microcode Update

Affected packages
12.1 <= FreeBSD-kernel < 12.1_1
12.0 <= FreeBSD-kernel < 12.0_12
11.3 <= FreeBSD-kernel < 11.3_5


VuXML ID fbe10a8a-05a1-11ea-9dfa-f8b156ac3ff9
Discovery 2019-11-14
Entry 2019-11-25

Starting with version 1.26, the devcpu-data port/package includes updates and mitigations for the following technical and security advisories (depending on CPU model).

Intel TSX Updates (TAA) CVE-2019-11135 Voltage Modulation Vulnerability CVE-2019-11139 MD_CLEAR Operations CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-11091 TA Indirect Sharing CVE-2017-5715 EGETKEY CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-11091 JCC SKX102 Erratum

Updated microcode includes mitigations for CPU issues, but may also cause a performance regression due to the JCC erratum mitigation. Please visit for further information.

Please visit for detailed information on these advisories as well as a list of CPUs that are affected.

Operating a CPU without the latest microcode may result in erratic or unpredictable behavior, including system crashes and lock ups. Certain issues listed in this advisory may result in the leakage of privileged system information to unprivileged users. Please refer to the security advisories listed above for detailed information.


CVE Name CVE-2017-5715
CVE Name CVE-2018-11091
CVE Name CVE-2018-12126
CVE Name CVE-2018-12127
CVE Name CVE-2018-12130
CVE Name CVE-2019-11135
CVE Name CVE-2019-11139
FreeBSD Advisory SA-19:26.mcu